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AMENDMENTS TO THE CLAIMS: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Claims 1 - 46. (Canceled) 

47. (Currently Amended) A tamper-resistant electronic circuit for implementation in 
a device, said tamper-resistant electronic circuit comprising: 

a storage device for tamper-resistantly storing, during manufacture of the tamper- 
resistant electronic circuit, a random secret not accessible over aB -any external circuit interfacejo 
the tamper-resistant electronic circuit : 

trigger data generating circuitry for, during configuration of the tamper-resistant 

electronic circuit, generating trigger data using the random secret and device-specific security 
data that is different from the random secret and outputting the trigger data outside of the tamper- 
resistant electronic circuit: 

a receiver fo r, during operation of the configured tamper-resistant electronic 
circuit by a user, receiving external to the tamper-resistant electronic circuit from the user via an 
external ci r cuit interface the trigger data e xtornal data that ir , externa] te thn tnmpnr mr . ir.t.nnt 
e l e ctronic circuit ; 

a cryptographic processing engin e, in response to the externally received trigger 
data from the user, for performing cryptographic processing at least partly in response to said 
stored secret and the externally received trigger data from the user e xt e rnal data rocoivod oxtomnl 
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to the tamper resistant olootronic circuit to generate a temporal temporarily available instance of 
the device-specific security data internally confined within said electronic circuit during usage of 
said devic e, wherein the g e n e rated t e mporal instance of d e vic e sp e cific security data d e p e nds on 
a valu e of said stored s e cr e t and a valu e of said e xternal data and wherein th e gen e rated temporal 
instanc e of d e vic e specific s e curity data can only be g e nerat e d as long as oxt e rnal data is 
availabl e at th e r e c e iv e r ; and 

electronic circuitr y, connected to the cryptographic processing engine and 
configured to perform a security-related operation in response to said internally-confined^ 
temporarily available t e mporal instance of device-specific security data. 

48. (Previously Presented) The electronic circuit according to claim 47, wherein said 
device is a network device and said operation is related to at least one of data confidentiality, 
data integrity, authentication, authorization and non-repudiation in network communication. 

49. (Currently Amended) The electronic circuit according to claim 47, wherein said 
device is configured for producing digital content and said security-related operation is 
configured for marking said digital content based on said internally-confined^ temporarily 
available temporal instance of device-specific security data. 

50. (Previously Presented) The electronic circuit according to claim 49, wherein said 
operation is configured for generating a device-specific fingerprint embedded into said digital 
content. 
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51. Canceled. 

52. (Currently Amended) The electronic circuit according to claim 5447, wh e r e in 
said trigg e r data is d e fin e d bas e d on configurational d e vice specific s e curity data provid e d 
during configuration of th e d e vic e , and said electronic circuit comprises: 

means for generating, based on said stored secret and said configurational device- 
specific security data, said trigger data as a cryptographic representation of said configurational 
device-specific security data during configuration of said device; 

means for outputting said cryptographic representation over an external circuit 
interface during configuration; and 

means for internally re-generating said device-specific security data during usage 
of said device provided that said additional input corresponds to said cryptographic 
representation. 

53. Canceled. 

54. (Currently Amended) The electronic circuit according to claim 5^52, wherein 
said means for internally re-g enerating said configurational device-specific security data 
comprises means for generating a private key at least partly based on said stored secret, and said 
trigger data is generated as a cryptographic representation of said private key during 
configuration of said device. 
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55. (Currently Amended) The electronic circuit according to claim 47, further 
comprising means for making, during configuration of said device, said internally-confined^ 
temporarily availabl e t e mporal instance of device-specific security data available over the aft 
external circuit interface provided that a predetermined device access code is entered into the 
electronic circuit. 

56. (Previously Presented) The electronic circuit according to claim 47, further 
comprising means for disabling internal access to at least one of said stored secret and said 
device-specific security data unless a predetermined device access code is entered into the 
electronic circuit. 

57. (Previously Presented) The electronic circuit according to claim 55, further 
comprising: 

means for authentication of a manufacturer of said device; 
means for providing, during device manufacturing, said device access code to said 
device manufacturer in response to successful authentication. 

58. (Currently Amended) The electronic circuit according to claim 47, wherein said 
electronic circuitry comprises: 

means for performing additional cryptographic processing based on said 
internally-confined , temporarily available instance of the device-specific security data and 
further external input data to generate further security data; and 
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means for performing said security-related operation in response to said farther 

security data. 

59. (Previously Presented) The electronic circuit according to claim 58, wherein said 
device-specific security data represents a private key, and said further external input data 
represents an encryption of said further device-specific security data by the corresponding public 
key. 

60. (Previously Presented) The electronic circuit according to claim 59, wherein said 
further security data represents a symmetric content decryption key issued by a content provider, 
and said device-specific security data represents a private key of a device manufacturer. 

61. (Previously Presented) The electronic circuit according to claim 47, wherein said 
cryptographic processing engine is configured for generating a symmetric cryptographic key in 
response to a seed applied over an external circuit interface. 

62. (Currently Amended) The electronic circuit according to claim 47, wherein said 
cryptographic processing engine is configured for generating an internally-confined , temporarily 
available private key at least partly based on said stored secret, and said electronic circuitry 
comprises means for performing asymmetric cryptography operations based on said internally 
confined , temporarily available private key. 



-6- 



1541510 



SMEETS et al. 
Appl.No. 10/533,120 
October 13,2009 

63. (Previously Presented) The electronic circuit according to claim 62, further 
comprising means for generating a public key corresponding to said private key during 
configuration of said device, and means for outputting said public key over an external circuit 
interface. 

64. (Previously Presented) The electronic circuit according to claim 62, further 
comprising: 

means for performing shared key generation to generate a new shared key based 
on said generated private key and a public key of an intended communication partner; and 

means for performing cryptographic processing based on said new shared key. 

65. (Currently Amended) The electronic circuit according to claim 47, wherein said 
cryptographic processing engine is configured for generating said internally-confined 2 
temporarily available t e mporal instance of device-specific security data as a chain of k bind keys 
Bi, . . ., Bk in response to corresponding bind identities Rj, . . according to the following 
formula: 

Bi = f(Bi.,,Ri) fori=l,...,k, 
where Bo represents the stored secret, and f is a cryptographic one-way function. 

66. (Currently Amended) A device implemented with a tamper-resistant electronic 
circuit, said electronic circuit comprising: 
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a storage unit for tamper-resistantly storing, during manufacture of the tamper- 
resistant electronic circuit, a random secret not accessible over an- any external circuit interface Jo 
the tamper-resistant electronic circuit ; 

trigger data generating circuitry for, during configuration of the tamper-resistant 

electronic circuit, generating trigger data using the random secret and device-specific security 
data that is different from the random secret and outputting the trigger data outside of the tamper- 
resistant electronic circuit; 

a receiver fo r, during operation of the configured tamper-resistant electronic 
circuit by a user, receiving external to the tamper-resistant electronic circuit from the user via an 
external circuit interface the trigger data e xternal data that is external to th e tamp e r resistant 
electronic circuit ; 

a cryptographic processing engine , in response to the externally received trigger 
data from the user, for performing cryptographic processing at least partly in response to said 
stored secret and the externally received trigger data from the user ext e rnal data r e ceiv e d e xt e rnal 
to th e tamper r e sistant e l e ctronic circuit to generate a t e mporal temporarily available instance of 
the device-specific security data internally confined within said electronic circuit during usage of 
said devic e, wh e r e in th e gen e rat e d t e mporal instanc e of device specific s e curity data dep e nds on 
a valu e of said stored secr e t and a valu e of said e xt e rnal data and wh e rein the gen e rat e d t e mporal 
instance of d e vic e sp e cific s e curity data can only bo gen e rat e d as long as e xt e rnal data is 
availabl e at th e r e ceiv e r ; and 

electronic circuitr y, connected to the cryptographic processing engine and 
configured to perform a security-related operation in response to said internally-confined^ 
temporarily available t e mporal instance of device-specific security data. 
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67. (Previously Presented) The device according to claim 66, wherein said device is a 
network device and said operation is related to at least one of data confidentiality, data integrity, 
authentication, authorization and non-repudiation in network communication. 

68. (Previously Presented) The device according to claim 66, wherein said device is 
configured for producing digital content and said security-related operation is configured for 
marking said digital content based on said device-specific security data. 

69. (Currently Amended) The device according to claim 66, wherein said 
cryptographic processing engine is configured for generating said internally-confined^ 
temporarily available t e mporal instance of device-specific security data provided that additional 
input data in the form of predetermined trigger data is applied over an external circuit interface 
of the electronic circuit during usage of said device, wherein said trigger data is defined during 
configuration of said device. 

70. (Currently Amended) A method for manag e m e nt of s e curity data for a device, 
said method comprising the steps of: 

storing, in a controlled environment during manufacturing of a tamper-resistant 
electronic circuit, a secret randomized number in said electronic circuit such that the secret 
randomized number is not available outside of said electronic circuit; 

during configuration of the tamper-resistant electronic circuit, generating trigger 

data using the secret randomized number and device-specific security data that is different from 
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the secret randomized number and outputting the trigger data outside of the tamper-resistant 
electronic circuit; 

implementing, during circuit manufacturing, functionality into said electronic 

circuit for, during operation of the configured tamper-resistant electronic circuit by a user, 
receiving external to the tamper-resistant electronic circuit from the user via an external circuit 
interface the trigger data: 

implementing, during circuit manufacturing, functionality into said electronic 
circuit fo r, in response to the externally-received trigger data from the user, p erforming 
cryptographic processing at least partly based on said stored secret number and the externally- 
received trigger data from the user e xt e rnal data r e c e ived e xt e rnal to th e tamp e r r e sistant 
e l e ctronic circuit to generate a t e mporal temporarily available instance of the device-specific 
security data internally confined within said electronic circuit during usage of the device^ 
wh e rein th e g e n e rat e d t e mporal instanc e of d e vic e sp e cific s e curity data d e p e nds on a valu e of 
said stored secr e t and a valu e of said e xt e rnal data and wh e r e in th e g e n e rated temporal instanc e 
of d e vic e sp e cific s e curity data can only b e g e n e rat e d as long as e xt e rnal data is availabl e at th e 
r e c e iv e r ; 

implementing, during circuit manufacturing, a security-related operation into said 
electronic circuit, said security-related operation being configured for receiving at least said 
internally-confined , temporarily availabl e t e mporal instance of device-specific security data as 
input during usage of the device; and 

installing, during device manufacturing, said electronic circuit into said device. 
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71 . (Previously Presented) The method according to claim 70, wherein said device is a 
network device and said operation is related to at least one of data confidentiality, data integrity, 
authentication, authorization and non-repudiation in network communication. 

72. (Currently Amended) The method according to claim 70, wherein said device is 
configured for producing digital content and said security-related operation is configured for 
marking said digital content based on said internally-confined temporarily availabl e t e mporal 
instance of device-specific security data. 

73. (Currently Amended) The method according to claim 70, further comprising the 
step of providing, during configuration of the device, trigger data to be applied later during usage 
of the device in order to be able to generate said internally-confine d temporarily available 
temporal instance of device-specific security data within said electronic circuit. 

74. (Currently Amended) The method according to claim 73, further comprising the 
steps of: 

entering, in a controlled environment during device configuration, said trigger 
data as input data into said electronic circuit in order to obtain device-specific security data from 
the cryptographic functionality of the electronic circuit; 

recording, in a controlled environment during device configuration, said device- 
specific security data and said input data; and 

entering, in a controlled environment during device configuration, a 
predetermined device access code into the electronic circuit for accessing the internally-confined 
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temporarily availabl e t e mporal instance of device-specific security data over an external circuit 
interface. 

75. (Currently Amended) The method according to claim 73, further comprising the 
steps of: 

generating, in a controlled environment during device configuration, an 
internally-confined temporarily available t e mporal instance of device-specific security data; 

entering, in a controlled environment during device configuration, said generated 
device-specific security data into said electronic circuit in order to obtain said trigger data as a 
result representation from the cryptographic functionality of the electronic circuit; and 

recording, in a controlled environment during device configuration, said result 
representation and the previously generated device-specific security data. 
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